Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/hUuYdgROIcNEme-s18vm0b7vEHM.roa
File: hUuYdgROIcNEme-s18vm0b7vEHM.roa (raw, json)
Hash identifier: OOIC3DijTyYOSGUqcNum7uIRI3r8aqdYxJsyEqKzRlQ=
Subject key identifier: 85:4B:98:76:04:4E:21:C3:44:99:EF:AC:D7:CB:E6:D1:BE:EF:10:73
Certificate issuer: /CN=8d11cb015df9baab61228dbbce17dd4e00e63c13
Certificate serial: 0184F504C1C6A2AF14ABD2F1D97D5A7C0946
Authority key identifier: 8D:11:CB:01:5D:F9:BA:AB:61:22:8D:BB:CE:17:DD:4E:00:E6:3C:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRHLAV35uqthIo27zhfdTgDmPBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/hUuYdgROIcNEme-s18vm0b7vEHM.roa
Signing time: Fri 09 Dec 2022 03:54:00 +0000
ROA not before: Fri 09 Dec 2022 03:54:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 996
IP address blocks: 178.171.84.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f5:04:c1:c6:a2:af:14:ab:d2:f1:d9:7d:5a:7c:09:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d11cb015df9baab61228dbbce17dd4e00e63c13
Validity
Not Before: Dec 9 03:54:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=854b9876044e21c34499efacd7cbe6d1beef1073
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:52:c9:4d:a7:e4:88:06:ac:c2:86:81:f9:e5:
a0:3a:8f:62:1a:01:95:50:fa:30:17:9e:25:27:fd:
20:0b:31:19:89:51:8f:20:d2:a9:53:b0:3a:2a:21:
7b:67:42:8a:44:94:40:6e:ce:3f:4d:72:08:f2:6f:
94:f8:ba:43:5f:90:72:87:bc:bc:25:01:b7:3c:2d:
08:c3:fc:48:86:d2:76:2e:19:a2:9d:f3:9d:04:16:
3b:5f:9e:12:7a:0d:50:f1:5e:c7:6f:11:f8:34:9a:
06:03:9c:2f:a3:c4:16:12:d3:ff:aa:80:d4:c5:e1:
be:8c:de:c7:cb:38:51:e1:51:4d:02:35:2f:1f:8e:
89:a6:04:9a:12:eb:24:f2:48:9f:e3:13:45:6f:f9:
c3:27:1c:88:bc:75:ed:8d:30:cf:37:e0:f9:1e:f3:
f9:04:36:f2:c0:2e:1b:a0:46:b1:ae:be:68:77:9c:
85:49:12:22:97:3a:d0:8b:69:16:6b:bb:c4:26:81:
5e:9d:72:f6:97:90:d1:b4:45:2a:b3:2f:21:96:16:
c3:26:72:58:d3:da:a6:92:7c:b9:c3:00:67:f4:da:
21:0d:a1:ff:f3:f3:57:de:cb:63:46:ac:d6:4e:f4:
fa:8f:20:4d:11:88:b1:72:7d:1f:83:09:d2:19:e2:
39:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:4B:98:76:04:4E:21:C3:44:99:EF:AC:D7:CB:E6:D1:BE:EF:10:73
X509v3 Authority Key Identifier:
keyid:8D:11:CB:01:5D:F9:BA:AB:61:22:8D:BB:CE:17:DD:4E:00:E6:3C:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRHLAV35uqthIo27zhfdTgDmPBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/hUuYdgROIcNEme-s18vm0b7vEHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/jRHLAV35uqthIo27zhfdTgDmPBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.171.84.0/22
Signature Algorithm: sha256WithRSAEncryption
93:fd:00:bd:65:af:5d:35:0c:2a:ef:34:d7:70:54:f9:14:0e:
42:70:71:cb:19:dd:72:de:cc:63:23:73:dc:34:42:16:e4:47:
f5:24:89:bb:fb:20:f1:be:5f:f6:7a:a6:7e:97:e9:f2:ef:fb:
c7:39:e1:b3:7c:a5:61:e6:e9:bd:1e:e2:07:2c:5a:ae:65:86:
67:e6:ae:4e:7a:52:1b:ac:80:16:73:9d:fb:cc:01:59:dc:dc:
e2:39:ff:e8:61:ed:56:27:96:7a:3e:19:17:f3:41:54:aa:c3:
98:ec:10:f9:98:11:42:6d:d7:1e:ec:a0:02:ab:f2:e3:81:64:
e0:5e:e1:e1:b3:d4:9c:88:1a:d1:23:09:1b:6a:db:88:d0:e3:
5a:0c:fb:42:14:01:b1:df:15:4a:55:3d:1c:cc:f2:cb:01:17:
e8:38:fe:b8:f0:43:fd:16:07:35:1f:b6:a9:9d:9e:81:a8:50:
d2:41:22:6d:7b:bd:60:e7:1b:4a:53:c5:44:27:67:22:34:ca:
9c:c4:45:24:7b:b6:46:d7:43:f8:89:1b:99:08:6b:9a:30:25:
4b:6f:fc:33:31:70:09:a4:b4:03:6d:7d:3e:0e:fe:2d:e6:2b:
15:20:d1:47:38:a4:47:74:cb:13:dc:81:cd:b1:f9:06:32:e7:
d5:8f:05:99
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYT1BMHGoq8Uq9Lx2X1afAlGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhkMTFjYjAxNWRmOWJhYWI2MTIyOGRiYmNlMTdkZDRlMDBl
NjNjMTMwHhcNMjIxMjA5MDM1NDAwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NTRiOTg3NjA0NGUyMWMzNDQ5OWVmYWNkN2NiZTZkMWJlZWYxMDczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1VLJTafkiAaswoaB+eWgOo9iGgGV
UPowF54lJ/0gCzEZiVGPINKpU7A6KiF7Z0KKRJRAbs4/TXII8m+U+LpDX5Byh7y8
JQG3PC0Iw/xIhtJ2LhminfOdBBY7X54Seg1Q8V7HbxH4NJoGA5wvo8QWEtP/qoDU
xeG+jN7HyzhR4VFNAjUvH46JpgSaEusk8kif4xNFb/nDJxyIvHXtjTDPN+D5HvP5
BDbywC4boEaxrr5od5yFSRIilzrQi2kWa7vEJoFenXL2l5DRtEUqsy8hlhbDJnJY
09qmkny5wwBn9NohDaH/8/NX3stjRqzWTvT6jyBNEYixcn0fgwnSGeI5XQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIVLmHYETiHDRJnvrNfL5tG+7xBzMB8GA1UdIwQY
MBaAFI0RywFd+bqrYSKNu84X3U4A5jwTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvalJITEFWMzV1cXRoSW8yN3poZmRUZ0RtUEJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni81ZDg5MTUtYzQ0OC00MGU3LThjYWEt
YmE3NzFmZmQyNjljLzEvaFV1WWRnUk9JY05FbWUtczE4dm0wYjd2RUhNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ni81ZDg5MTUtYzQ0OC00MGU3LThjYWEtYmE3NzFmZmQyNjlj
LzEvalJITEFWMzV1cXRoSW8yN3poZmRUZ0RtUEJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCsqtUMA0G
CSqGSIb3DQEBCwUAA4IBAQCT/QC9Za9dNQwq7zTXcFT5FA5CcHHLGd1y3sxjI3Pc
NEIW5Ef1JIm7+yDxvl/2eqZ+l+ny7/vHOeGzfKVh5um9HuIHLFquZYZn5q5OelIb
rIAWc537zAFZ3NziOf/oYe1WJ5Z6PhkX80FUqsOY7BD5mBFCbdce7KACq/LjgWTg
XuHhs9SciBrRIwkbatuI0ONaDPtCFAGx3xVKVT0czPLLARfoOP648EP9Fgc1H7ap
nZ6BqFDSQSJte71g5xtKU8VEJ2ciNMqcxEUke7ZG10P4iRuZCGuaMCVLb/wzMXAJ
pLQDbX0+Dv4t5isVINFHOKRHdMsT3IHNsfkGMufVjwWZ
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:09 2024 by rpki-client on console-ams.rpki-client.org